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AMENDMENTS TO THE CLAIMS 

Please amend the claims as follows: 



(Currently Amended) A method for encrypting data, the method comprising: 
providing a data processing system for: 
generating a session key; 
encrypting the data utilizing the session key; 
encrypting the session key utilizing a user public key; 
encrypting the session key utilizing a master public key; 
generating a data packet including the encrypted data jr afid the encrypted 
session key utilizing the user public key and the encrypted session 
key utilizing the master public key ; 
transmitting the data packet to a destination data processing system; 
decrypting the data packet utilizing the session key; 
decrypting the session key utilizing a user private key; and 
decrypting the encrypted session key utilizing a master private key. 
an author i z e d party acc e ss i ng th e encrypt e d data by uti li z i ng th e mast e r 

public koy and a master private koy; and 
tho author i zed party decrypting tho encrypt e d s e ss i on key uti li zing th e 
m a st e r pr i vat e k e y and d e crypt i ng th e e ncrypted data w i th th e 
s e ss i on k e y to r e cr e at e or i g i na l data. 

2. (Cancel). 

3. (Cancel). 




4 



PATENT 

Docket Number: 16356.722 (DC-01753) 
Customer No. 000027683 

4. (Original) The method, as set forth in claim 1 , further comprising encrypting the 
session key utilizing an asymmetric encryption routine. 

5. (Original) The method, as set forth in claim 1 , further comprising encrypting the 
data utilizing a symmetric encryption routine. 

6. (Cancel). 

7. (Currently Amended) The method, as set forth in claim-2J_, further comprising 
storing a user's private key on a data storage medium coupled to the destination 
data processing system. 

8. (Previously Amended) The method, as set forth in claim 1 , further comprising 
storing the master private key on a data storage medium coupled to the 
destination data processing system. 

9. (Previously Amended) The method, as set forth in claim 7, further comprising 
retrieving the user's private key from a smart card utilizing a smart card reader 
coupled to the destination data processing system. 

1 0. (Previously Amended) The method, as set forth in claim 1 , further comprising 
retrieving the master private key from a smart card utilizing a smart card reader 
coupled to the destination data processing system. 

1 1 . (Original) The method, as set forth in claim 1 , further comprising utilizing a 
plurality of public master keys and a plurality of private master keys to decrypt 
the encrypted session key. 
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12. (Currently Amended) A public key data encryption system wherein each user 
has a private key and a certificate containing data pertaining to the user including 
the user's public key, the encryption system comprising: 

a master public key; 

a first data processing system operable to generate a session key, to encrypt 
data using the session key, to encrypt the session key with the user's 
public key, to encrypt the session key with the master public key, to 
generate a data packet including the encrypted session keys and the 
encrypted data, and to transmit the data packet to a second data 
processing system ; 

the second data processing system operable to: 

decrypt the data packet utilizing the session key; 
decrypt the session key utilizing a user private key; and 
decrypt the encrypted session key utilizing a master private key. 

an author i z e d party acc e ssing th e encrypt e d data by util i z i ng th e mast e r publ i c 
k e y and a m a ster privat e k e y; and 

th e author i z e d party d e crypt i ng th e e ncrypted s e ss i on k e y ut ili z i ng th e mast e r 
pr i vat e k e y and d e crypting th e e ncrypt e d data w i th th e s e ssion k e y to 
r e cr e at e or i gina l data. 

13. (Cancel). 

14. (Cancel). 

15. (Original) The public key data encryption system, as set forth in claim 12, 
wherein an asymmetric encryption routine is utilized to encrypt the session key. 
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16. (Original) The public key data encryption system, as set forth in claim 12, 
wherein a symmetric encryption routine is utilized to encrypt the data. 

17. (Cancel). 

18. (Previously Amended) The public key data encryption system, as set forth in 
claim 12, wherein the user's private key is stored on a data storage medium 
coupled to the second data processing system. 

19. (Previously Amended) The public key data encryption system, as set forth in 
claim 12, wherein the master private key is stored on a data storage medium 
coupled to the second data processing system. 

20. (Previously Amended) The public key data encryption system, as set forth in 
claim 12, further comprising a smart card reader coupled to the second data 
processing system and operable to retrieve the user's private key from a smart 
card. 

21 . (Previously Amended) The public key data encryption system, asset forth in 
claim 12, further comprising a smart card reader coupled to the second data 
processing system and operable to retrieve the master private key from a smart 
card. 

22. (Currently Amended) The public key data encryption system, as set forth in 
claim 12, further comprising: 

a plurality of master private keys; and 
a plurality of master public keys^a^d 
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a s e cond data proc e ssing syst e m op e rabl e to r e c ei v e th e data packet, to d e crypt 
th e e ncrypt e d s e ss i on k e y with th e p l ural i ty of mast e r pr i vat e k e ys, and to 
d e crypt th e data w i th th e s e ssion key . 

23. (Currently Amended) An article of manufacture comprising: 

a computer usable medium having computer readable program code embodied 
therein for encrypting and decrypting data wherein each user has a private 
key and a public key, the article of manufacture comprising: 
a master public key; 

a first data processing module operable to generate a session key, to 

encrypt data using the session key, to encrypt the session key with 
the user's public key, to encrypt the session key with the master 
public key, to generate a data packet including the encrypted 
session keys and the encrypted data, and to transmit the data 
packet to a second data processing module : 

the second data processing module operable to: 

decrypt the data packet utilizing the session key: 
decrypt the session key utilizing a user private key; and 
decrypt the encrypted session key utilizing a master private key. 

an authorized party accossing tho encrypted data by ut ili z i ng tho master 
pub li c k e y and a mast e r pr i vat e k e y; and 

th e a uthor i z e d party d e crypt i ng th e e ncrypt e d s e ss i on key ut i l i zing th e 
mast er pr i vat e k e y and d e crypt i ng the encrypted data w i th th e 
s e ssion k e y to r e cr e at e or i g i na l data. 

24. (Cancel). 

25. (Cancel). 
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26. (Previously Amended) The article of manufacture, as set forth in claim 23, 
wherein an asymmetric encryption routine is utilized to encrypt the session key. 

27. (Previously Amended) The article of manufacture, as set forth in claim 23, 
wherein a symmetric encryption routine is utilized to encrypt the data. 

28. (Cancelled). 

29. (Currently Amended) The article of manufacture, as set forth in claim 23, further 
comprising: 

a plurality of master private keys; and 
a plurality of master public keys^a«4 

a second data proc e ss i ng modul o operabl e to r e c e iv e tho data pack o t, to decrypt 
th e e ncrypt e d s e ss i on k e y with th e p l ura li ty of mast e r pr i vat e k e ys, and to 
decrypt tho data w i th the sess i on k e y . 



